Lv1020

**Name of the Vulnerable Software and Affected Versions** Tenda CX12L version 16.03.53.12 **Description** A stack-based buffer overflow occurs in the `formSetPPTPServer()` function within the '/goform/SetPptpServerCfg' file. This issue allows for remote execution of an attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions Tenda CX12L version 16.03.53.12 Description A flaw exists in the fromNatStaticSetting function within the /goform/NatStaticSetting file of the Tenda CX12L. Manipulation of the `page` argument can trigger a stack-based buffer overflow, potentially allowing for remote attacks. The exploit for this issue is publicly available. Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the /goform/NatStaticSetting file.

Name of the Vulnerable Software and Affected Versions Tenda CX12L version 16.03.53.12 Description A stack-based buffer overflow exists in the `fromP2pListFilter` function of the `/goform/P2pListFilter` file. Manipulation of the `page` argument triggers the overflow. The attack requires local network access. Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the `/goform/P2pListFilter` file.

Name of the Vulnerable Software and Affected Versions Tenda CX12L version 16.03.53.12 Description A flaw exists in the `fromwebExcptypemanFilter` function within the `/goform/webExcptypemanFilter` file. Manipulation of the `page` argument can trigger a stack-based buffer overflow. This requires local network access. The exploit has been publicly disclosed. Recommendations Update to a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions Tenda CX12L version 16.03.53.12 Description A stack-based buffer overflow exists in the `fromAddressNat` function of the `/goform/addressNat` file. The issue is triggered by manipulating the `page` argument, allowing for remote exploitation. The exploit is publicly available. Recommendations Update to a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions Tenda CX12L version 16.03.53.12 Description A security flaw exists in Tenda CX12L version 16.03.53.12. This issue affects the `fromRouteStatic` function within the `/goform/RouteStatic` file. Manipulation of the `page` argument can trigger a stack-based buffer overflow, allowing for remote attacks. The exploit for this issue has been publicly released. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.